A python lib to parse traffic flow information from pcaps
Project description
A python lib to parse traffic flow information from pcaps.
Homepage : https://github.com/jmhIcoding/flowcontainer.
Fix bugs:
set the default filter string to be `tcp or udp or gre`.
update help information for errors.
supports ipv6 parse.
fix separator bugs, replace separator from '+' to '`'
fix separator bugs, for http payload, the separator char would separate the payload wrongly.
support extract the extended protocol name, e.g. TLSv1, TLSv2, IPSEC etc.
fix http payload bugs.
2023-03-30: check the version of wireshark, ensure the version is not greater than 4.0.0.
20203-4-16: fix the bugs of separating flow into multi-flows due to the application protocol.
v7.1 : 2023-06-05: support load and parse very large pcap file.
v7.2 : 2023-07-13: fixed the TCP dupack bugs for TLS/SSL.
Project details
Release history Release notifications | RSS feed
Download files
Download the file for your platform. If you're not sure which to choose, learn more about installing packages.
Source Distribution
flowcontainer-7.2.tar.gz
(14.7 kB
view hashes)